Home | History | Annotate | Download | only in passwd
History log of /src/usr.bin/passwd/local_passwd.c
RevisionDateAuthorComments
 1.37  18-May-2024  andvar s/Aborb/Absorb/ in comment.
 1.36  25-Mar-2012  dholland fix non-PAM build
 1.35  31-Aug-2011  plunky branches: 1.35.2;
NULL does not need a cast
 1.34  02-Mar-2010  gdt Log successful and unsuccessful attempts to change passwords, via -l
or pam, to ease IT audit guideline compliance. Patch from Richard
Hansen of BBN in private mail.

Proposed on tech-kern with positive comments, except a suggestion I
didn't implement:

A possible future enhancement is refraining from logging if the old
password is empty, as some people abort password changing that way.
However, it's not clear if this complies with most guidelines that
require password change logging, and at first glance that appears to
be a fairly difficult change.
 1.33  17-Apr-2009  dyoung Rename variables to fix GCC warnings: local variables optopt and optarg
shadow globals.
 1.32  12-Apr-2009  lukem Fix WARNS=4 issues
 1.31  25-Jan-2008  christos branches: 1.31.10; 1.31.12;
minor lint
 1.30  26-Feb-2005  thorpej branches: 1.30.18;
Magor rework of passwd(1) for the PAM case. Add "-d <database>" option,
similar to Solaris's "-r <repository" or Mac OS X's "-i <infosystem>",
to select the password database (files, nis, krb5). Otherwise, we default
to using whatever PAM decides.
 1.29  12-Jan-2005  christos adapt to pw_gensalt() changes.
 1.28  11-Jan-2005  christos use pw_gensalt() and don't dig into libcrypt.
 1.27  30-Oct-2004  dsl Add (unsigned char) cast to ctype functions
A password containg 80...ff could be reported (incorrectly) as being
all lower case.
 1.26  07-Aug-2003  agc Move UCB-licensed code from 4-clause to 3-clause licence.

Patches provided by Joel Baker in PR 22365, verified by myself.
 1.25  16-Nov-2002  itojun use strlcpy
 1.24  18-Aug-2001  ad Slight change to previous: rebuild the insecure password db if the expiry
time has changed, not just been set.
 1.23  18-Aug-2001  ad Update for pw_mkdb() change: restrict updates to one user's records and/or
the secure database where appropriate.
 1.22  09-Oct-2000  ad Back out previous.
 1.21  21-Sep-2000  ad When not running as the super-user: if the user's password has expired or is
due to expire within _PASSWORD_WARNDAYS (or the setting from login.conf),
force the user to set a different password than the one they are currently
using. (Yes, it's actually worthwhile doing this.)
 1.20  06-Jul-2000  ad - Pull in pwd.h since `struct passwd' is now used in extern.h.
- Use pwd_gensalt().
 1.19  14-Feb-2000  aidan branches: 1.19.4;
Modularize password changing mechanisms, as proposed in
<20000130122641.A8134@xanadu.kublai.com>:
Subject: PROPOSAL: making passwd pluggable (sort of)
Date: Sun, 30 Jan 2000 12:26:41 -0500
 1.18  12-Jan-2000  mjl Wrap login.conf database access in ifdef LOGIN_CAP.
 1.17  12-Jan-2000  mjl Changes to passwd(1) for login.conf. Supported capabilities are
minpasswordlen and passwordtime (expiry time).
 1.16  11-Jul-1998  mrg KNF. ensure buffers are nul-terminated.
 1.15  02-Apr-1998  kleink Need <time.h> for time() prototype.
 1.14  19-Oct-1997  lukem WARNSify, fix .Nm usage
 1.13  24-Jul-1997  phil Changes to close PR3806. (Different than in PR.)
-- don't lock passwd until data is collected.
-- save a copy of original pw data for pw_copy checking
-- Try several times to lock passwd
 1.12  22-Feb-1997  thorpej Tidy up printf formats in "don't use all lower case" warning
message. From Dave Huang <khym@bga.com>, PR #3198.
 1.11  11-Feb-1997  mrg remove dangerous sprintf and strcpy calls.
 1.10  28-Dec-1996  tls Sync with 4.4BSD-Lite2 (whew!)
 1.9  09-Aug-1996  thorpej Slight semantics change: ALWAYS use YP if the system is bound to a
YP server. This is required if the passwd database is to stay in sync
if this program is run on the YP server. Note, local passwd database
operations can still be performed by passing the -l flag.

Also, some minor cleanup and RCS id police.
 1.8  15-May-1996  jtc Updated to use new password file functions in libutil.
From Greg Hudson <ghudson@MIT.EDU>.
 1.7  24-Dec-1994  cgd needs string.h
 1.6  05-Jan-1994  deraadt rationalize & cleanup -y/-k/-l code
update man page for -y
yp password setting now works again!
relax passwd setting retry code a teeny bit
 1.5  01-Aug-1993  mycroft Add RCS identifiers.
 1.4  07-Jul-1993  brezak Return status instead of exiting.
 1.3  26-Apr-1993  cgd changed to use new libcrypt scheme.
 1.2  09-Apr-1993  proven Fixed problem where users with a blank password field can't change their
password.
 1.1  21-Mar-1993  cgd branches: 1.1.1;
Initial revision
 1.1.1.2  27-Dec-1996  tls Import of 4.4BSD-Lite2 sources
 1.1.1.1  21-Mar-1993  cgd initial import of 386bsd-0.1 sources
 1.19.4.1  26-Feb-2002  he Pull up revision 1.20 (requested by jonathan):
Add support for local MD5-encrypted passwords.
 1.30.18.1  23-Mar-2008  matt sync with HEAD
 1.31.12.1  13-May-2009  jym Sync with HEAD.

Third (and last) commit. See http://mail-index.netbsd.org/source-changes/2009/05/13/msg221222.html
 1.31.10.1  20-Nov-2010  riz Pull up following revision(s) (requested by gdt in ticket #1360):
usr.bin/passwd/pam_passwd.c: revision 1.5
usr.bin/passwd/local_passwd.c: revision 1.34
Log successful and unsuccessful attempts to change passwords, via -l
or pam, to ease IT audit guideline compliance. Patch from Richard
Hansen of BBN in private mail.
Proposed on tech-kern with positive comments, except a suggestion I
didn't implement:
A possible future enhancement is refraining from logging if the old
password is empty, as some people abort password changing that way.
However, it's not clear if this complies with most guidelines that
require password change logging, and at first glance that appears to
be a fairly difficult change.
 1.35.2.1  17-Apr-2012  yamt sync with head

RSS XML Feed